Bright Vision Technologies

Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. We recognize that our people are our strength. We are an equal opportunity employer and place a high value on diversity and inclusion. We do not discriminate on the basis of any protected attribute. We make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans.

SAP GRC Specialist

Location

United States

Posted

1 day ago

Salary

$150K - $185K / year

Seniority

Mid Level

Job Description

SAP GRC Specialist

Bright Vision Technologies

Role Description We are seeking an experienced SAP GRC Specialist to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for: - SAP role design - User provisioning - Segregation-of-duties analysis - Audit support - The technical operation of SAP GRC suites The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Requirements - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Mentor junior team members and support knowledge transfer across the security team. Benefits - 100% Remote (Continental United States) - Salary: $150K - $185K - This is a full-time, direct W2 position with Bright Vision Technologies. - No third-party client, vendor, or implementation partner involved. - Support for H1B transfers for qualified candidates. How to Apply For immediate consideration, please send your resume to [email protected] or contact us at (908) 505-3544.

Related Categories

Related Job Pages

More Security Engineer Jobs

Cashea logo

Incident Response Engineer

Cashea

Compra ahora y paga después, en cuotas sin interés. El impulso que mereces.

Full TimeRemoteTeam 501-1,000Since 2022H1B No Sponsor

• Investigar y responder incidentes de seguridad • Operar el SIEM para realizar consultas y análisis que soporten investigaciones • Administrar, configurar y diseñar automatizaciones en el SOAR • Desarrollar herramientas y scripts propios para automatizar respuestas • Ejecutar tareas de Threat Intelligence que involucran investigación de actores de amenaza • Llevar a cabo investigaciones forenses en endpoints y servidores

Argentina
Full TimeRemoteTeam 10,001+H1B No Sponsor

• Design and maintain network infrastructure • Firewall and security management • Network monitoring and troubleshooting • Compliance and risk management • Documentation and change management • Collaboration and support • Continuous improvement

Ethiopia
€50K - €58K / year
Koniag Government Services, LLC logo

Information System Security Officer

Koniag Government Services, LLC

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies.

Full TimeRemoteTeam 1,001-5,000

Role Description Koniag IT Systems (KITS), a Koniag Government Services company, is seeking an experienced ICAM ISSO (Identity, Credential, and Access Management Information System Security Officer) to support critical cybersecurity and identity management initiatives. The ideal candidate is a detail-oriented security professional with a strong background in ICAM frameworks, federal security compliance, and risk management. The successful candidate will bring a combination of technical expertise and strong communication skills to ensure the security and integrity of identity and access management systems. Ability to obtain or maintain the required security clearance to support our government customer. The ICAM ISSO will serve as the primary security point of contact responsible for ensuring confidentiality, integrity, and availability of identity, credentials, and access management systems. This individual will work closely with system owners, program managers, and security teams to maintain system authorization, manage risks, and ensure compliance with federal security standards and ICAM policies. - Serve as the Information System Security Officer (ISSO) for one or more ICAM-related information systems, ensuring continuous monitoring and compliance with applicable federal security frameworks. - Develop, maintain, and update System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and other Authorization to Operate (ATO) documentation in accordance with NIST and agency-specific requirements. - Support the Assessment and Authorization (A&A) process, including facilitating security assessments, coordinating with Security Control Assessors (SCAs), and preparing authorization packages. - Monitor and manage the security posture of ICAM systems, including identity proofing, credentialing, authentication, and access control solutions. - Review and analyze audit logs, security alerts, and system events to identify anomalies, potential threats, and compliance gaps. - Coordinate with system administrators, developers, and engineers to ensure security controls are properly implemented and functioning as intended. - Identify and document system vulnerabilities and risks, coordinating remediation efforts and tracking progress through the POA&M process. - Support the implementation and governance of ICAM policies, procedures, and standards in alignment with federal mandates such as FICAM, HSPD-12, EO 14028, and OMB Memoranda. - Participate in security incident response activities, including investigation, containment, and reporting of security events related to identity and access management systems. - Conduct periodic security reviews and assessments to ensure ongoing compliance with security requirements and ICAM best practices. - Provide security guidance and recommendations to program teams regarding identity management, privileged access management (PAM), multi-factor authentication (MFA), and zero trust principles. - Collaborate with cross-functional teams including IT, compliance, and operations staff to align security practices with organizational and mission objectives. - Prepare and deliver security briefings, reports, and documentation for government stakeholders and leadership. Qualifications - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field from an accredited college or university. - 5+ years of experience in information security, with at least 2 years of direct experience in an ISSO role or equivalent security capacity. - Demonstrated experience supporting the NIST Risk Management Framework (RMF) and ATO processes. - Experience working with ICAM technologies and frameworks, including identity proofing, PKI, MFA, and access management solutions. - Active or ability to obtain the required security clearance. Requirements - Exceptional communication skills in English – both written and oral – with the ability to communicate effectively with technical and non-technical stakeholders, including government leadership. - Strong working knowledge of the NIST Risk Management Framework (RMF), including NIST SP 800-53, NIST SP 800-37, and FIPS 199/200. - Proficiency in developing and maintaining ATO documentation, including SSPs, POA&Ms, Security Assessment Reports (SARs), and Interconnection Security Agreements (ISAs). - Knowledge of ICAM concepts including identity lifecycle management, credentialing, authentication protocols (MFA, PIV/CAC), privileged access management (PAM), and single sign-on (SSO). - Experience with continuous monitoring programs and security information and event management (SIEM) tools. - Ability to analyze and interpret vulnerability scan results (e.g., Nessus, Tenable) and work with system teams to remediate findings. - Familiarity with federal cybersecurity policies, directives, and mandates, including FISMA, HSPD-12, EO 14028, and OMB Memoranda. - Strong analytical and problem-solving skills with attention to detail in reviewing security controls and documentation. - Ability to manage multiple priorities and deliver quality work products within defined timelines. - Ability to obtain and maintain the required security clearance. Desired Skills and Competencies - Experience working in a federal government IT or cybersecurity environment. - Knowledge of Zero Trust Architecture (ZTA) principles and implementation strategies, particularly as they relate to identity and access management. - Familiarity with Privileged Access Management (PAM) tools such as CyberArk, BeyondTrust, or similar platforms. - Experience with identity governance and administration (IGA) platforms. - Knowledge of SAML, OAuth2, OpenID Connect (OIDC), and other authentication and federation protocols. - Familiarity with cloud-based ICAM solutions and platforms (e.g., Azure Active Directory, Okta, AWS IAM). - One or more of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+, CAP (Certified Authorization Professional), GIAC Security Essentials (GSEC). - Experience with GRC (Governance, Risk, and Compliance) tools such as XACTA, eMASS, or Archer. Benefits - Competitive compensation. - Extraordinary benefits package including health, dental, and vision insurance. - 401K with company matching. - Flexible spending accounts. - Paid holidays. - Three weeks paid time off. - And more.

United States
TripleNet Technologies logo

Information Security Manager

TripleNet Technologies

A certified minority business enterprise founded in 1997, TripleNet Technologies exists to help new ventures, privately-held firms, Fortune 100 companies, and o

Title: Information Security Manager Location: Seattle, wa Job Description: Key Responsibilities and Duties: - Guide security policy and participate in broader Information Security governance efforts. - Develop and maintain the Information Security Management System (ISMS) in collaboration with regional information security SMEs and technical consultants. - Oversee and manage the ISMS and recommend appropriate mitigating controls. - Oversees Information Security Risk Management activities, including risk identification, assessment, and communication to relevant interest holders. - Provide valuable expertise and leadership directly to the governing Joint Board executive leadership, including sharing metrics to reflect the performance of the regional security program functions, executive risk score reports, and other guidance on a variety of information security topics. - Facilitate a committee of Information Security SMEs across the Agencies to ensure both regional compliance and concurrence on information security-related matters, recommending solutions, and working from the regional perspective to achieve optimal solutions. - Collaborate with the Systems Integrator, other vendors, and partner Agencies to ensure security best practices, standards, policies, and regulatory requirements are incorporated into core payment system design, implementation, and sustainment, as well as support other future phase projects. - Conduct regular security reviews of both software and processes, advising on information security practices. Reviews and creates threat models and recommends security enhancements consistent with information security strategy and evolving threats. - Support external IT security audits and assessments that focus on operation. - Develop, update, implement, and conduct information security training programs to support the ISMS objectives. - Manage approvals for Identity and Access Management (IAM) and Access Control Administration. - Act as Incident Commander for Security Incident Response activities, whenever the Information Security Incident Response Plan is invoked by the regional program; play an interest holder and oversight role if the plan is invoked by other partners or vendors. - Participate in information security incident investigation and response efforts; perform root-cause analysis when incidents occur and prepare incident reports. - Evaluate change requests to determine potential impacts to Information Security, including IT systems, processes, policies, and provide appropriate input to the Change Management process. - Coach future Regional Operations Team (ROOT) information security personnel as the ISMS becomes complete and mature. - Keep up to date on latest information security trends, "best practices", threats, and countermeasures. Required Skills and Qualifications: - Enterprise-level information security plans, policies, standards, guidelines, methods, and practices based on current industry standards, best practices, tools, and techniques. - Information Security Management Systems, and applicable industry standards (ISO 27001/2). - Pertinent federal, state, and local laws, codes, and regulations; particularly those that affect information security for payment systems. - Environments subject to the Payment Card Industry Data Security Standard (PCI DSS), including compliance-related duties. - Knowledge and understanding of developing and administering information-security standards, practices, audits, risk management, and policy compliance. - Information Security Audit principles and practices. - Knowledge of one or more governance frameworks such as COBIT 5, ISO, NIST, or COSO. - Strong understanding of IT Service Delivery (ITIL) core processes and methodologies. - Principles, methods, and techniques used in the facilitation of managing projects and leading teams. - Relevant experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography. - In-depth knowledge of security software threats and vulnerability mitigation techniques. - Working knowledge of cloud platforms such as Azure/ AWS and relevant security controls. - Establishing and maintaining collaborative working relationships with other department staff, management, vendors, and other interest holders. - Documenting and explaining risks, recommendations, and incident data to technical interest holders. - Interpreting and administering information security policies, standards, and procedures sufficiently to administer, discuss, resolve, and explain them to staff and other constituencies. - Leading or supporting an Information Security Management System. - Generating metrics and preparing reports to facilitate decision-making on security-related activities. - Utilizing personal computer software programs affecting assigned work and in compiling and preparing spreadsheets and reports. - Responding to inquiries with effective oral and written communication. - Researching, analyzing, and evaluating new security processes, products, and techniques. - Excellent time management skills including the ability to prepare, prioritize, and complete work plans. - Working effectively under pressure, meeting deadlines, and adjusting to changing priorities. - Writing of technical documentation and standards, including skill in English usage, spelling, grammar, and punctuation Required Certifications or Licenses: - At least one of the following (in valid status): - Certified Information Systems Security Professional (CISSP). - Certified Information Security Manager (CISM). - Certified Information Security Auditor (CISA). Other industry relevant certifications in the fields of information security, project management, auditing and/ or risk management, such as the Certification in Risk and Information Systems Control (CRISC) Preferred Skills and Qualifications: - Knowledge of Governance, Risk, and Compliance (GRC) tools. - Principles of leadership, supervision, training, and performance evaluation. - Extensive knowledge of risk-based methodologies, and one or more of the following frameworks: ISO 27001/2:2017, 27005:2011, and 31000; PCI-DSS; or NIST 800-53. Duration:11/07/2025 to 2/28/2026 Location: Downtown Seattle (Hybrid) M-F: 8 AM to 5 PM Hybrid: 3 days work onsite Pay: $75 per hour

Washington
$0 / hour